CVE-2026-20965: Cymulate Research Labs Discovers Token Validation Flaw that Leads to Tenant-Wide RCE in Azure Windows Admin Center

News
Yanac

Found a new Azure vulnerability – CVE-2026-2096, a high-severity flaw in the Azure SSO implementation of Windows Admin Center that allows a local administrator on a single machine to break out of the VM and achieve tenant-wide remote code execution. submitted by /u/Fun_Preference1113 [link] [comments]Technical Information Security Content & DiscussionRead More